Environment
- App Control Server: 8.9.4+
- App Control Agent: All Supported Versions
Symptoms
- Agent Server Communication Certificate expired, causing all Agents to become disconnected.
- Communication Certificate was replaced, but Agents remain in a disconnected state.
Cause
By default the Server will prioritize the previous Communication Certificate for 60 minutes after it is replaced. In the event this certificate was expired, this prioritization will cause the Agents to remain in a disconnected state.
Resolution
- Log in to the Console and navigate to https://ServerAddress/shepherd_config.php
- Select the Property CertificateDelaySwapMinutes and change the Value to 0
- Restart the App Control Server service.
- Verify the Agents are once again showing as Connected.
- Return the Property CertificateDelaySwapMinutes to the default Value of 60
Additional Notes
- These steps are not necessary if the Communication Certificate is/was replaced prior to expiration.
- This setting is meant as a way to allow both the old and new Communication Certificates to be accepted.
- This is currently being investigated by Engineering (EP-19021) and will be addressed in a future update.
Related Content
